CVE-2017-18076 Blast Radius

HIGH • CVSS 7.5In strategy.rb in OmniAuth before 1.3.2, the authenticity_token value is improperly protected because POST (in addition to GET) parameters are stored

Is Your Infrastructure Using These Packages?

EchelonGraph automatically scans your cloud infrastructure and SBOMs to map your exposure to vulnerabilities like CVE-2017-18076.

Start Free Scan →← Back to CVE-2017-18076